2026³â 07¿ù 11ÀÏ Åä¿äÀÏ
 
 
  ÇöÀçÀ§Ä¡ > ´º½ºÁö´åÄÄ > Science & Technology

·£¼¶¿þ¾îºÎÅÍ µÅÁöµµ»ì±îÁö... ³ë·ÃÇØÁø »ç±âÇà°¢

 

Á¤Ä¡

 

°æÁ¦

 

»çȸ

 

»ýȰ

 

¹®È­

 

±¹Á¦

 

°úÇбâ¼ú

 

¿¬¿¹

 

½ºÆ÷Ã÷

 

ÀÚµ¿Â÷

 

ºÎµ¿»ê

 

°æ¿µ

 

¿µ¾÷

 

¹Ìµð¾î

 

½Å»óǰ

 

±³À°

 

ÇÐȸ

 

½Å°£

 

°øÁö»çÇ×

 

Ä®·³

 

Ä·ÆäÀÎ
Çѻ츲 ¡®¿ì¸®´Â ÇѽҸ²¡¯ ½Ò ¼Òºñ Ä·ÆäÀÎ ½Ã...
1000¸¸¿øÂ¥¸® Àΰø¿Í¿ì, °Ç°­º¸Çè Áö¿ø ¡®Æò...
- - - - - - -
 

File-Sharing Phishing Attacks Surge 350%, According to New Research From Abnormal Security

Threat actors increasingly exploit file sharing services to advance phishing attacks, while continuing to scale traditional BEC attacks by 50% over the last year
´º½ºÀÏÀÚ: 2024-08-23

SAN FRANCISCO -- Abnormal Security, the leader in AI-native human behavior security, today released its H2 2024 Email Threat Report, revealing the growing threat of file-sharing phishing attacks, whereby threat actors use popular file-hosting or e-signature solutions as a disguise to manipulate their targets into revealing private information or downloading malware.

Sophisticated File-Sharing Phishing Attacks on the Rise

Examining data collected between June 2023 and June 2024, Abnormal saw file-sharing phishing volume more than triple, increasing 350% over the year. The majority of these attacks were sophisticated in nature, with 60% exploiting legitimate domains, most commonly webmail accounts, such as Gmail, iCloud, and Outlook; productivity and collaboration platforms; file storage and sharing platforms like Dropbox; and e-signature solutions like Docusign.

“The trust that people place in these kinds of services—especially those with recognizable brand names—makes them the perfect vehicle for launching phishing attacks,” said Mike Britton, chief information security officer at Abnormal Security. “Very few companies block URLs from these services because they aren’t inherently malicious. And by dispatching phishing emails directly from the services themselves, attackers hide in plain sight, making it harder for their targets to distinguish between legitimate and malicious communications. And when attackers layer in social engineering techniques, identifying these attacks becomes near-impossible.”

Finance and Built Environment Firms are Most Vulnerable

The finance industry was found to be most at risk, with file sharing phishing attacks making up one in ten attacks. As financial institutions rely on file-sharing platforms to securely exchange documents, attackers have ample opportunities to slip in a fraudulent file-sharing notification among the sea of invoices, contracts, investment proposals, and regulatory updates.

The second most vulnerable industry was construction and engineering, followed by real estate and property management companies. These sectors not only rely heavily on frequent document transfers via file-sharing platforms, but also involve time-sensitive projects with large payouts. By exploiting the urgency of these exchanges, attackers have an opportunity to send file-sharing phishing attacks that appear time-critical and blend in seamlessly with legitimate emails.

BEC and VEC Remain Persistent Threats

The biannual report also revealed the continued growth of business email compromise (BEC) and vendor email compromise (VEC) attacks:

· BEC attacks grew by more than 50% over the last year, with attacks on smaller organizations jumping nearly 60% in the last half.
· 41% of Abnormal customers were targeted by VEC each week in the first half of 2024, a slight increase over the 37% targeted in the second half of 2023.
· Construction and engineering firms, as well as retailers and consumer goods manufacturers, were most vulnerable to VEC attacks, with 70% of organizations receiving at least one VEC attack in the first half of the year.

Britton continued, “Cybercriminals are continuing to use email to target human behavior, and through a variety of techniques—whether it’s leveraging social engineering tactics for BEC, or using the guise of legitimate applications in their phishing schemes. The report findings underscore this deliberate shift away from overt payloads and threat signatures, and toward email attacks designed to manipulate behavior. Keeping up with these threats will require organizations to adapt accordingly, recentering their defenses on protecting humans as their most vulnerable endpoints.”



 Àüü´º½º¸ñ·ÏÀ¸·Î

New Method Enables Structural Determination of Diverse Phenolic Compounds from a Tiny Alpine Flower Sample
GlobalFoundries, Qualinx Unveil Europe¡¯s First Sovereign Flow for Security‑Critical Chips
Netflix to Reach 400 Million Subscribers by 2031, Maintaining Global Streaming Lead Despite Industry Consolidation
IQM Opens First U.S. Quantum Tech Center at University of Maryland Discovery District
HistoSonics Advances Histotripsy, Submits FDA Application for Kidney Tumors
Boomi Adds Snowflake Cortex Agents Support to Agentstudio to Enable Unified AI Agent Governance
NIQ Unveils Six New AI-Powered Capabilities at C360, Executing on Its Vision for Agentic Commerce

 

New Polymorph of Indomethacin Discovered
NTT DATA Expands Collaboration with Google Cloud to Accelerate Enterpr...
IQM Announces Novel Quantum Error Correction Approach Toward Fault-Tol...
C.H. Robinson Unveils First AI to Continuously Assess, Improve, and Op...
Shilpa Medicare and Gate2Brain Sign Strategic Equity Partnership to Ad...
Interactive Brokers Integrates AI into Client Portfolios - Informed by...
Global Smartphone Average Selling Price to Reach $565 in 2026

 


°øÁö»çÇ×
¹Ìµð¾î¿Í M• Mediaour ØÚ体ä² ØÚô÷ä² ¿¥¿À MO ØÚä²
¾Ë¸®¾Ë A⋮⋮⋮ Allial Áß¹® Ç¥±â ä¹××尔 ä¹××ì³
À£ÇÁ·Ò W⋮⋮⋮ Welfrom 卫ÜØ êÛÝ£
¹ÙÀÌ¿ÀÀÌ´Ï B⋮ BIOINI ù±药研 ¹ÙÀÌ¿ÀÀÌ´Ï·¦ BIOINILAB ...
º£³×ÀÍ ¡Õ Beneik 宝Ò¬ìÌ, À̺ñÁî eBizh æ¶币òª EZ æ¶òª
¿¡³ÊÀÌÀ¯ ¡Õ¡Õ EnerEU 额Òö äþÒö
´º½ºÁö Áß¹®Ç¥±â´Â À½Â÷ Ç¥±â¹æ½Ä '纽ÞÙó¢ ´Ï¿ì½ºÁö'
¾Ë¸®À¯ºñ ^v Alliuv ä¹备 AV ä¹êó备, ¾Ë¶ã =^= Althle ä¹÷åìÌ
´ºÆÛ½ºÆ® New1st Áß¹® Ç¥±â 纽ììãæ(¹øÃ¼ Òïììãæ), N1 纽1
¿£ÄÚ½º¸ð½º ¡ÕC À̾¾ 'EnCosmos : EC' Áß¹® Ç¥±â ì¤ñµ
¾ÆÀ̵ð¾î·Ð Idearon Áß¹® Ç¥±â ì¤îè论 ì¤îèÖå
¾ËÇÁ·Ò ^ Alfrom ä¹尔ÜØ ä¹ì³ÜØ, ¿ÃÇÁ·Ò A⋮⋮ Allfrom &...

 

ȸ»ç¼Ò°³ | ÀÎÀçä¿ë | ÀÌ¿ë¾à°ü | °³ÀÎÁ¤º¸Ãë±Þ¹æÄ§ | û¼Ò³âº¸È£Á¤Ã¥ | Ã¥ÀÓÇѰè¿Í ¹ýÀû°íÁö | À̸ÞÀÏÁÖ¼Ò¹«´Ü¼öÁý°ÅºÎ | °í°´¼¾ÅÍ

±â»çÁ¦º¸ À̸ÞÀÏ news@newsji.com, ÀüÈ­ 050 2222 0002, ÆÑ½º 050 2222 0111, ÁÖ¼Ò : ¼­¿ï ±¸·Î±¸ °¡¸¶»ê·Î 27±æ 60 1-37È£

ÀÎÅͳݴº½º¼­ºñ½º»ç¾÷µî·Ï : ¼­¿ï ÀÚ00447, µî·ÏÀÏÀÚ : 2013.12.23., ´º½º¹è¿­ ¹× û¼Ò³âº¸È£ÀÇ Ã¥ÀÓ : ´ëÇ¥ CEO

Copyright ¨Ï All rights reserved..